Gentoo Security Advisory GLSA 201110-09 (Conky)

The remote host is missing updates announced in advisory GLSA 201110-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2011-3616

The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...

CVE-2011-3616

CVE-2011-3616 affects Conky (= 1.10.4-1.2) or apply vendor advisories. The CVSS metrics in the references reflect local access with high integrity impact and complete availability impact, but explicit exploit vectors beyond the symlink path are not described in the provided documents.

CVE-2011-3616

The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf...

GLSA-201110-09 : Conky: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201110-09 Conky: Privilege escalation A privilege escalation vulnerability due to an insecure temporary file was found in Conky. Impact : A local attacker could possibly overwrite arbitrary files with the privileges of the user...